RSS Alerts

Share

More services

Related Links

Related Stories

  • US standards drive Canadian information security
    An absence of legislation and the presence of the laissez-faire attitude has resulted in Canada being rather lax when it comes to information security compliance. Robin Arnfield looks at how US standards are driving the Canadian information security marketplace
  • Running the Right Risks
    Standards cover much of the field of information risk management, but there is an art to the rational understanding and mitigation of risk that is more about skill than knowledge. Brian McKenna uncovers how the discipline can be practiced with a cool head and a calm stomach
  • Running the right risks
    Standards cover much of the field of information risk management, but there is an art to the rational understanding and mitigation of risk that is more about skill than knowledge. Brian McKenna uncovers how the discipline can be practised with a cool head and a calm stomach
  • ISF issues major update on Standard of Good Practice for IT security professionals
    The Information Security Forum (ISF) has published a major update on its Standard of Good Practice for IT security professionals, which is billed as the industry’s most business-focused, all-in-one guide to information security assurance.
  • Data Breach Spring
    Infosecurity’s Drew Amorosi examines three data breach incidents from the past few months that, by their nature, keep security vendors in business, regulators busy, and CISOs up at night. Find out why industry observers think this rash of massive breaches could lead to a ‘PCI for consumer privacy’

Top 5 Stories

News

ISF infosecurity standards incorporated into Acuity’s software

22 May 2009

The Information Security Forum (ISF) and London-based services and software provider, Acuity Risk Management, have signed an intellectual property (IP) licensing agreement to integrate ISF’s Standard of Good Practice for Information Security into Acuity’s STREAM risk and compliance management software.

STREAM users will as a result, be able to view, control and manage their information security compliance in real time against ISF’s Standard and other information security standards such as ISO 27002 and Cobit.

Howard A. Schmidt, president and chief executive of ISF, said: “We believe that integrating ISF IP into industry leading products such as Acuity’s STREAM will provide a range of important benefits to both ISF members and non-members and increase adoption of the ISF Standard of Good Practice.”

Acuity’s managing director Simon Marvell, added: “For the first time, CISOs will have access to the ISF’s information security standard delivered through a tool they can use every day and in real-time to see their enterprise’s risk and compliance position.”

ISF’s Standard of Good Practice for Information Security is based on a work programme and analysis and integration of other information security related standards such as ISO 27002 and COBIT v4.1. It also embraces legal and regulatory requirements including the Sarbanes-Oxley Act 2002, Payment Card Industry Data Security Standard (PCI DSS), Basel II 1998, and the EU Directive on Data Protection.

This article is featured in:
Compliance and Policy

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012